+2000-08-31 Jeffrey Altman <jaltman@columbia.edu>
+
+ * locate_kdc.c: krb5_locate_srv_dns()
+ Ensure that res_search() is called with a query string
+ that is terminated by a '.' in order to disable the
+ expansion of dns-search lists.
+
2000-07-22 Tom Yu <tlyu@mit.edu>
* accessor.c: Add NEED_SOCKETS in order to get prototype for
int priority;
int weight;
unsigned short port;
- char *host;
+ char *host, *h;
};
struct srv_dns_entry *head = NULL;
*
*/
- if ( strlen(service) + strlen(protocol) + realm->length + 5
+ if ( strlen(service) + strlen(protocol) + realm->length + 6
> MAX_DNS_NAMELEN )
goto out;
sprintf(host, "%s.%s.%.*s", service, protocol, realm->length,
realm->data);
+ /* Realm names don't (normally) end with ".", but if the query
+ doesn't end with "." and doesn't get an answer as is, the
+ resolv code will try appending the local domain. Since the
+ realm names are absolutes, let's stop that.
+
+ But only if a name has been specified. If we are performing
+ a search on the prefix alone then the intention is to allow
+ the local domain or domain search lists to be expanded.
+ */
+
+ h = host + strlen (host);
+ if ((h > host) && (h[-1] != '.') && ((h - host + 1) < sizeof(host)))
+ strcpy (h, ".");
+
size = res_search(host, C_IN, T_SRV, answer.bytes, sizeof(answer.bytes));
if (size < hdrsize)
projects / krb5.git / commitdiff